Analysis

  • max time kernel
    1s
  • max time network
    5s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    07/11/2022, 00:27

Errors

Reason
platform exec: image=C:\Users\Admin\AppData\Local\Temp\Trojan-Ransom.Win32.Blocker.exe command="C:\Users\Admin\AppData\Local\Temp\Trojan-Ransom.Win32.Blocker.exe" wdir=C:\Users\Admin\AppData\Local\Temp Payload error: %1 is not a valid Win32 application.

General

  • Target

    Trojan-Ransom.Win32.Blocker.exe

  • Size

    742KB

  • MD5

    b697a244f4d1306f7a19cdc799ea4051

  • SHA1

    1e4e0b8e51dcce56a6c5e1365500d6da7739b25e

  • SHA256

    012990e0ff6e3787ef8cd17ba45d3aa5d28722b5d872ebd80e2c41f0f587a012

  • SHA512

    869a04bb016d070ad2ffc96c3cd2482ffb3ba0a8f311f543b1ab443df6a001ac470fd4740e50b5e7b72eb4b919323778b8e1ffc51e3343a0f8427935f57036a3

  • SSDEEP

    12288:gvehvl3b6cK4QJrr186amIWge+RCQdyIMA65xb/T+ZXmwWE43LY/g5B39:gvehvJbZKXJrr186amIWgVRFyIMX5xvz

Score
1/10

Malware Config

Signatures

Processes

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads